From 32eb9892fcb4bb454c8d4035d09abf2095c09d46 Mon Sep 17 00:00:00 2001
From: Michael Bianco <iloveitaly@gmail.com>
Date: Thu, 22 Aug 2024 07:16:22 -0600
Subject: [PATCH] manually set dnsmasq ordering

---
 install.sh | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/install.sh b/install.sh
index 6dc4ed7..6268de2 100755
--- a/install.sh
+++ b/install.sh
@@ -44,6 +44,17 @@ $BLOCK_TIME root PATH="$PATH:/usr/sbin:/usr/local/bin/" /bin/bash /block.sh > /p
 $ALLOW_TIME root PATH="$PATH:/usr/sbin:/usr/local/bin/" /bin/bash /allow.sh > /proc/1/fd/1 2>&1
 EOF
 
-# set upstream DNS servers to Quad9
+# set upstream DNS servers to Quad9 and CF as secondary
 # do NOT set ECS since that can expose your IP address to DNS servers (can impact scraping)
-pihole -a setdns 9.9.9.9,149.112.112.112,2620:fe::fe,2620:fe::9
+
+# why not use? `pihole -a setdns 9.9.9.9,149.112.112.112,2620:fe::fe,2620:fe::9`
+# without this, which DNS server is used is effectively random!
+# https://discourse.pi-hole.net/t/fallback-secondary-upstream-dns/33753/3
+
+cat <<EOF >/etc/dnsmasq.d/02-strict.conf
+strict-order
+server=1.0.0.1
+server=2606:4700:4700::1001
+server=9.9.9.9
+server=2620:fe::fe
+EOF